Google Gemini Flaws Allowed AI-Powered Data Theft

Cyber Security News by CyberSum.net

Published on October 1, 2025 at 06:04 PM

4 sources

Researchers have disclosed three now-patched vulnerabilities in Google's Gemini AI assistant that could have enabled data theft and privacy breaches. Dubbed the "Gemini Trifecta," the flaws allowed attackers to use indirect prompt injection to steal sensitive user information, including saved data and location. The vulnerabilities affected Gemini Cloud Assist, its Search Personalization Model, and its Browsing Tool. Attackers could inject malicious instructions into logs or a user's search history, which Gemini would later execute. These commands could then force the AI's browsing tool to exfiltrate the stolen data to an attacker-controlled server, demonstrating how AI systems themselves can become attack vectors.

Also Read

VMware vCenter & NSX Flaws Allow Email & User Enumeration

Broadcom has addressed multiple vulnerabilities in VMware vCenter and NSX with new security updates. The flaws include an SMTP header injection in vCenter (CVE-2025-41250) that could allow a privileged user to manipulate notification emails. Additionally, two vulnerabilities in NSX (CVE-2025-41251 and CVE-2025-41252) permit an unauthenticated attacker to enumerate valid usernames. These NSX flaws exploit a weak password recovery mechanism and login response timing to confirm existing accounts. Administrators are urged to apply the patches immediately, as these issues could facilitate targeted brute-force or phishing attacks.

By Cyber Security News by CyberSum.netOctober 1, 2025 at 06:04 PM